diff options
| author | Sylvain Munaut <tnt@246tNt.com> | 2010-06-11 00:19:42 +0200 |
|---|---|---|
| committer | Harald Welte <laforge@gnumonks.org> | 2010-06-14 20:43:53 +0200 |
| commit | e824d9c2a117cdfa83fa9614810321cc976048a2 (patch) | |
| tree | 41a0bf5b8f4937599ac99b77232947cd4f0af120 /openbsc/src/vty_interface_layer3.c | |
| parent | c593cf100abeae7c795ccb568be68384081b9824 (diff) | |
auth: Add support for XOR test A3A8 algo (and vty commands)
Signed-off-by: Sylvain Munaut <tnt@246tNt.com>
Diffstat (limited to 'openbsc/src/vty_interface_layer3.c')
| -rw-r--r-- | openbsc/src/vty_interface_layer3.c | 39 |
1 files changed, 26 insertions, 13 deletions
diff --git a/openbsc/src/vty_interface_layer3.c b/openbsc/src/vty_interface_layer3.c index b5af0ab72..7c32c05b0 100644 --- a/openbsc/src/vty_interface_layer3.c +++ b/openbsc/src/vty_interface_layer3.c @@ -442,9 +442,10 @@ DEFUN(ena_subscr_extension, return CMD_SUCCESS; } -#define A3A8_ALG_TYPES "(none|comp128v1)" +#define A3A8_ALG_TYPES "(none|xor|comp128v1)" #define A3A8_ALG_HELP \ "Use No A3A8 algorithm\n" \ + "Use XOR algorithm\n" \ "Use COMP128v1 algorithm\n" DEFUN(ena_subscr_a3a8, @@ -457,9 +458,9 @@ DEFUN(ena_subscr_a3a8, struct gsm_subscriber *subscr = get_subscr_by_argv(gsmnet, argv[0], argv[1]); const char *alg_str = argv[2]; - const char *ki_str = argv[3]; + const char *ki_str = argc == 4 ? argv[3] : NULL; struct gsm_auth_info ainfo; - int rc; + int rc, minlen, maxlen; if (!subscr) { vty_out(vty, "%% No subscriber found for %s %s%s", @@ -468,23 +469,35 @@ DEFUN(ena_subscr_a3a8, } if (!strcasecmp(alg_str, "none")) { - /* Just erase */ - rc = db_sync_authinfo_for_subscr(NULL, subscr); + ainfo.auth_algo = AUTH_ALGO_NONE; + minlen = maxlen = 0; + } else if (!strcasecmp(alg_str, "xor")) { + ainfo.auth_algo = AUTH_ALGO_XOR; + minlen = A38_XOR_MIN_KEY_LEN; + maxlen = A38_XOR_MAX_KEY_LEN; } else if (!strcasecmp(alg_str, "comp128v1")) { - /* Parse hex string Ki */ - rc = hexparse(ki_str, ainfo.a3a8_ki, sizeof(ainfo.a3a8_ki)); - if (rc != 16) - return CMD_WARNING; - - /* Set the infos */ ainfo.auth_algo = AUTH_ALGO_COMP128v1; - ainfo.a3a8_ki_len = rc; - rc = db_sync_authinfo_for_subscr(&ainfo, subscr); + minlen = maxlen = A38_COMP128_KEY_LEN; } else { /* Unknown method */ return CMD_WARNING; } + if (ki_str) { + rc = hexparse(ki_str, ainfo.a3a8_ki, sizeof(ainfo.a3a8_ki)); + if ((rc > maxlen) || (rc < minlen)) + return CMD_WARNING; + ainfo.a3a8_ki_len = rc; + } else { + ainfo.a3a8_ki_len = 0; + if (minlen) + return CMD_WARNING; + } + + rc = db_sync_authinfo_for_subscr( + ainfo.auth_algo == AUTH_ALGO_NONE ? NULL : &ainfo, + subscr); + /* the last tuple probably invalid with the new auth settings */ db_sync_lastauthtuple_for_subscr(NULL, subscr); |